确保在运行时检查、执行、授予和撤销权限。
Be sure that you check, enforce, grant, and revoke permissions at runtime.
在将访问权授予个别标识时,撤销权限最容易。
Revoking privileges is easiest when access is granted to individual identities.
当对全局变量授予或撤销权限时生成SECMAINT审计记录。
SECMAINT audit records are generated when a privilege is GRANTed or REVOKEed on global variables.
另外,按照惯例仅在证书遭到破坏时才撤销它,并不仅用作撤销权限的手段。
Also, it is customary to revoke a certificate only in the case that it is compromised and not simply as a means to revoke privileges.
您已经了解到,撤销权限可以在一个资源上阻止证书,同时在另一个资源上允许该证书。
You have seen that revoking privileges blocks a certificate on one resource while allowing it on another.
另一方面,使用CA 颁发的证书需要单独的机制来执行撤销证书和撤销权限这两项任务。
On the other hand, the use of CA-issued certificates requires separate mechanisms for the tasks of revoking certificates and revoking privileges.
撤销权限的更有趣的用例是SVRCONN或CLUSRCVR通道,当至少有一个CA受信任时,该通道必须匹配许多证书。
The more interesting case for revoking privileges is the SVRCONN or CLUSRCVR channel that must match many certificates when at least one CA is trusted.
撤销权限的更有趣的用例是SVRCONN或CLUSRCVR通道,当至少有一个CA受信任时,该通道必须匹配许多证书。
The more interesting case for revoking privileges is the SVRCONN or CLUSRCVR channel that must match many certificates when at least one CA is trusted.
应用推荐